EffectiveSB 149 (2024)

Utah Artificial Intelligence Policy Act: Compliance Checklist

A practical checklist of the main obligations to satisfy under this law.

Compliance checklist

Run through these items to scope your obligations under Utah Artificial Intelligence Policy Act. Not legal advice; verify with counsel before acting.

  1. Confirm scope: does the law apply to your operations? See Who Must Comply or use the Compliance Checker.
  2. Inventory in-scope AI systems and classify them by role (developer/deployer) and decision type.
  3. Address each obligation:
    • disclosurePersons in regulated occupations using generative AI must proactively disclose at the start of an interaction that the consumer is interacting with generative AI; other consumer-facing entities must disclose upon consumer inquiry.Utah Code § 13-2-12(2)
  4. Adopt a federal control framework: NIST AI RMF or ISO/IEC 42001 to demonstrate due care.
  5. Document evidence of compliance for each obligation, refreshed at the cadence the law requires.
  6. Build the AG-notification path if the law requires it (Colorado, California SB 53).
  7. Set the refresh cadence — annual for most impact-assessment regimes; continuous for monitoring.
More on this law

We may receive referral commissions from recommended compliance tools. Recommendations are based on product fit and not on commission size. Links marked “partner link” include a tracked redirect.